Re: opendkim on Ubuntu with postfix,dovecot,ClamAv

From: John Williams <>
Date: Thu, 18 Apr 2013 12:04:20 +0200

FYI, this is what I found on just now:

*T**o best protect our users, Gmail will begin treating emails signed
with less than 1024-bit keys as unsigned, starting in January 2013. **
**We highly recommend that all senders using short keys switch to RSA
keys that are at least 1024-bits long.*

> On 04/17/2013 08:06 AM, John Williams wrote:
>> Sorry, didn't mean to mean to send this as anonymous...
>> What I forgot to mention is that it sa-test did tell me it was good
>> ONCE:
> FWIW I got odd results sending to sa-test as well. I ended up
> searching for other sites to send to, and found some good ones.
> Doesn't look like I bothered to bookmark them though, as IIRC there
> were enough good results from the search that it didn't seem necessary.
> I'm assuming you've looked at the full headers from a message sent to
> gmail, and to this list? IME just having dkim won't necessarily
> whitelist you for the major mail providers, but having both dkim and
> spf generally does the trick. Also FWIW if I send mail on this account
> to gmail my dkim validates.
> Finally, how large is your key? I've heard that using sizes > 1024 is
> likely to lead to the dreaded "unexpected results."
> hth,
> Doug
Received on Thu Apr 18 2013 - 10:04:29 PST

This archive was generated by hypermail 2.3.0 : Thu Apr 18 2013 - 10:09:02 PST